207dfeb6e03bfacb3a86196a379f45be5006721ccf58166c367cfe7c2171430d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

207dfeb6e03bfacb3a86196a379f45be5006721ccf58166c367cfe7c2171430d
Size

1.8MB
MD5

8e7bcb24355ac64e06ab97fcd8706a35
SHA1

6c6f224ca152775faa68873dc490311d3fab9d6f
SHA256

207dfeb6e03bfacb3a86196a379f45be5006721ccf58166c367cfe7c2171430d
SHA512

d5b7794ace36649e2ac552495be3167e49dc1ee4f6af9e6b0d6345f4dd549197be15cad4fc3e58ffd5ca6a225821385e41706f02ddb2d33c47b9c21ef306397c
SSDEEP

24576:1CFAX1FNa1vhXbAHxZuNVrbfMAekRfP8Tg4AIhDM+gr2e/FC2YvHyHrdV7WVxJB1:1Io61vhXK+f1d8c4A4/eNCzKpU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
207dfeb6e03bfacb3a86196a379f45be5006721ccf58166c367cfe7c2171430d

Files

207dfeb6e03bfacb3a86196a379f45be5006721ccf58166c367cfe7c2171430d
.exe windows:6 windows x86 arch:x86

2eabe9054cad5152567f0699947a2c5b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpy

Sections

Size: 183KB - Virtual size: 416KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Size: 512B - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

eijjuswt
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

duvwzjgc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.taggant
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE